M

Manoj M.

Product Manager

Bengaluru, Karnataka, India18 yrs 8 mos experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Expert in Threat Modeling and Secure Design.
  • Led application security teams at multiple top firms.
  • Extensive experience in Cloud and Application Security.
Stackforce AI infers this person is a Cloud Security and Application Security expert with extensive experience in enterprise-level security solutions.

Contact

LinkedIn

Skills

Core Skills

Threat ModelingSecure DesignCloud SecurityApplication SecuritySecurity Development LifecycleSecurity ConsultingSecurity TestingVulnerability Assessment

Other Skills

Agile MethodologiesArchitecture reviewsBusiness ContinuityCEHCISACISSPCOBITCode ReviewCode reviewsComputer ForensicsComputer SecurityDesign reviewsDevSecOpsEncryptionFirewalls

About

Involved in collaborating with software architects & developers on highly technical solutions, & helping them build secure and resilient software. Threat modeling software products and features to identify potential threats & risks, & mitigate them. Participate in secure design & architecture reviews. Mentor security warriors, & empower them for secure software design & development. Threat Modeling, Secure Design & Architecture for products & services; helping engineering teams to enumerate threats, and mitigate them at Netskope. Practiced security in the Connected, Autonomous, Shared, Electric - Intuitive Mobility world, contributing to high-voltage projects involving the latest trends & technologies at Daimler. Managed & led the application security consulting team at the Application Security Center of Excellence at Capgemini. Was involved in security consulting & Security Development Lifecycle (SDL) implementation for various software development projects at Microsoft. Was member of Product Security Assurance (PSA) Team, & Product Security Incident Response Team (PSIRT) at Emerson. Was Involved in security research on commercial products & open source projects. Conducted design reviews, architecture reviews, code reviews in agile environments. Threat modeling using STRIDE / DREAD methodologies. Was Application Security Testing Team Lead at IBM. Responsibilities included client-interactions, project-management, project-execution, team-building, team-training, mentoring, etc. Also, worked as a Security Consultant and consulted for multiple international & national clients for security while at Paladion. Expertise: Cloud Security, Threat Modeling, Design Reviews, Architecture Reviews, SDL implementation, Secure Code Reviews, Application Security Testing, Network Penetration Testing, Red-teaming, Ethical Hacking, Security Policy Design and Audit, Vulnerability Assessments, Firewall Rulebase Analysis, Secure Network Architecture Review, Wifi Audits, Network Security Audits. Domain knowledge in SASE, Automotive, DCIM, Banking & Financial Services, Insurance, Telecom, Healthcare.

Experience

Netskope

2 roles

Senior Staff Product Security Engineer

Promoted

Apr 2023Present · 2 yrs 11 mos

  • Working with Engineering teams on Threat modeling & secure design & architecture reviews of components & features to identify potential threats & risks, & provide accurate, actionable security insights & results to mitigate them. Evangelized and led the adoption of Threat models, Secure SDLC and security best practices. Conduct Security Awareness Sessions & Training for Engineering teams. Mentor junior team members, security warriors, & enable them for secure software design & development.
Threat modelingSecure designArchitecture reviewsSecurity best practicesSecurity awareness trainingThreat Modeling+1

Staff Product Security Engineer

Feb 2021Mar 2023 · 2 yrs 1 mo

  • On a Mission to build security into the products we Build!
  • Threat Modeling, Secure Design & Architecture for products & services of Netskope Secure Access Service Edge (SASE). Involved in DevSecOps implementation & consulting. Conducting Security Awareness Sessions & Trainings for Engineering teams. Helping engineering teams to enumerate threats, and mitigate them. Contributing to Secure Design and Architecture for Netskope SSE. And everything else 'security' at random!
Threat modelingSecure designDevSecOpsSecurity awareness trainingThreat ModelingSecure Design

Mercedes-benz research and development india

Security Architect

Jul 2018Feb 2021 · 2 yrs 7 mos · Bengaluru, Karnataka, India

  • Worked as an end-to-end Security Architect for connected vehicles. Work involved In-Vehicle Security, IOT Security, Application Security, Container Security, API Security, Cloud Security, Big-Data Security, etc.
  • Implemented DevSecOps in Azure DevOps and Jenkins CI/CD pipelines. Implemented automated security measures & controls in the pipelines to seamlessly integrate SAST, OSS&LC, DAST. Helped project teams in Security Profiling, Threat Modeling, Secure Design & Architecture, Secure Implementation, Secure Build, Release & Deployment. Enabled teams to onboard to Secure Software Development LifeCycles.
In-Vehicle SecurityIOT SecurityApplication SecurityCloud SecurityDevSecOps

Capgemini

Manager Application Security

Nov 2015Jul 2018 · 2 yrs 8 mos · Pune, Maharashtra, India

  • Managed & led the application security consulting team at the Application Security Center of Excellence. Provided consulting and solutions in Security Development Lifecycle, Privacy, Data Security to enhance services revenue and customer satisfaction. Managed a team of Security consultants engaged in various customer projects. Drove growth of Application Security practice. Security consulting for various projects. Involved in Design & Architecture reviews, Security Code Reviews, Security Testing; leading teams for various projects. Involved in preparing RFP responses, client meetings, new initiatives for practice, new tools development.
Security Development LifecycleDesign reviewsSecurity code reviewsSecurity testingApplication Security

Microsoft

Security Consultant

Feb 2013Oct 2015 · 2 yrs 8 mos · Hyderabad, Telangana, India

  • Security consulting, & setting up Security Development Lifecycle (SDL) programs for various software development projects.
  • Involved in each phase of SDL for Microsoft solutions:
  • 1. Training developers
  • 2. Defining Security & Privacy Requirements
  • 3. Designing security measures for integration
  • 4. Implementation by Testing & Analysis
  • 5. Verification through Strict security reviews
  • 6. Final Security Reviews during Release
  • 7. Response to incidents & vulnerabilities
Security Development LifecycleSecurity measuresIncident responseSecurity Consulting

Emerson innovation center - pune

Software Security Engineer

Aug 2011Jan 2013 · 1 yr 5 mos · Pune, Maharashtra, India

  • UML Security Reviews, Design Reviews, Architecture Reviews, Code Reviews, Aplication Security Testing, Penetration Testing, Training, Creating Security Guidelines & Standards, Security Research on Open Source Projects & Proprietary / Commercial Software.
  • Adept in working in Agile Software Development environments. Proven expertise in reviewing design documents (stories) for each sprint for security deficiencies, and suggesting enhancements. Code reviews using commercial & open-source tools to find vulnerabilities in code.
UML Security ReviewsDesign reviewsCode reviewsSecurity testingApplication SecuritySecurity Testing

Ibm

Security Specialist

Dec 2009Jun 2011 · 1 yr 6 mos · Pune, Maharashtra, India

  • Security Testing of Applications, Penetration Testing of Networks, Security of Enterprise Network Infrastructure and Operations, Vulnerability Assessments of Servers and Network Devices, Wifi Security Audits. Leveraged OWASP Top 10, OWASP ASVS, OWASP SAMM in various projects.
Security testingPenetration testingVulnerability assessmentsSecurity TestingVulnerability Assessment

Paladion

Security Engineer

Feb 2008Dec 2009 · 1 yr 10 mos · Mumbai, Maharashtra, India

  • Secure Code review, Security Testing of Applications, Penetration Testing of Networks, security of Enterprise Network Infrastructure and Operations, Vulnerability Assessments of Servers and Network Devices, Firewall rulebase analysis, Secure Network design & review.
Secure code reviewSecurity testingVulnerability assessmentsApplication SecurityVulnerability Assessment

Brainvisa technologies

Programmer

Jan 2007Jan 2008 · 1 yr · Pune, Maharashtra, India

  • Secure programming applications in various web technologies. Provided security fixes in the code for various applications.
Secure programmingSecurity fixesApplication Security

Education

Assam (Central) University

Master of Science - MS — Computer Science

Jan 2002Jan 2007

Vivekananda Kendra Vidyalaya

Pre-University — Science

Jan 1999Jan 2001

Kendriya Vidyalaya

Matriculation

Jan 1991Jan 1999

Stackforce found 100+ more professionals with Threat Modeling & Secure Design

Explore similar profiles based on matching skills and experience

Pratham Mittal

Pratham Mittal

Application Security Engineer - 2 (Asia/Pacific)

at Amazon

Sangrur, India3 yrs 7 mos exp
Application SecurityCloud SecurityPenetration TestingThreat Modelling
Puneet Kulkarni

Puneet Kulkarni

Senior Engineer

at Siemens Healthineers

Bengaluru, India8 yrs 11 mos exp
Information SecurityVulnerability Assessment
Ankur Agarwal

Ankur Agarwal

Product Security Tech Lead

at Cisco

Bengaluru, India11 yrs 9 mos exp
Application SecurityCloud SecurityPenetration TestingSecurity Architecture DesignVulnerability Assessment
Dixon Dalmeida

Dixon Dalmeida

Senior Staff Cloud Security Engineer

at Palo Alto Networks

Bengaluru, India7 yrs 5 mos exp
Cloud GovernanceCloud SecurityCybersecurity
UT

Utkarsh Tiwari

Head - Product Security Engineering & Compliance

at Meesho

Bengaluru, India9 yrs 7 mos exp
DevSecOpsPenetration TestingProduct SecurityProject ManagementRisk Assessment
Sunil Joshi

Sunil Joshi

Software Engineer 3 - Product Security

at Broadcom

Pune, India10 yrs exp
Application SecurityCyber SecurityVulnerability AssessmentVulnerability Management
Suhas Hariharan

Suhas Hariharan

Senior Manager Product Security

at Skyflow

Bengaluru, India16 yrs 8 mos exp
Cloud SecurityPenetration TestingSecurity Engineering
Okan YILDIZ

Okan YILDIZ

Staff Security Engineer

at Depop

Leighton Buzzard, United Kingdom12 yrs 1 mo exp
Application SecurityCloud ComputingDevSecOpsLeadership